AZL-44715 CVE-2022-35018 affecting package advancecomp 2.6-1

Advancecomp v2.3 was discovered to contain a segmentation fault...

UBUNTU-CVE-2022-35019

Advancecomp v2.3 was discovered to contain a segmentation fault...

UBUNTU-CVE-2022-35101

SWFTools commit 772e55a2 was discovered to contain a segmentation violation via /multiarch/memset-vec-unaligned-erms.S...

UBUNTU-CVE-2021-33463

An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in yasmexprcopyexcept in libyasm/expr.c...

Important: java-11-amazon-corretto

Issue Overview: Generated code produced by C1 may leak a package-private class to a class from a different package. CVE-2022-21540 MethodHandle.invokeBasic method can be accessed on byte code level from an arbitrary class. CVE-2022-21541 The Xalan Java XSLT library has an integer truncation issue...

CVE-2022-34633

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted sfence.vma instructions rather create an exception...

CVE-2022-34636

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a and RISCV-Boom commit ad64c5419151e5e886daee7084d8399713b46b4b implements the incorrect exception type when a PMA violation occurs during address translation...

UBUNTU-CVE-2022-2042

Use After Free in GitHub repository vim/vim prior to 8.2...

CVE-2022-26718

An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.4, macOS Big Sur 11.6.6. An application may be able to gain elevated privileges...

UBUNTU-CVE-2022-28654

isclosingsession allows users to fill up apport.log...

AZL-9580 CVE-2022-27405 affecting package freetype for versions less than 2.12.1-1

FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation violation via the function FNTSizeRequest...

CVE-2022-24488

Windows Desktop Bridge Elevation of Privilege Vulnerability...

UBUNTU-CVE-2021-44508

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. A lack of NULL checks in calls to iousopen in srunix/iousopen.c allows attackers to crash the application by dereferencing a NULL pointer...

UBUNTU-CVE-2021-44498

An issue was discovered in FIS GT.M through V7.0-000 related to the YottaDB code base. Using crafted input, attackers can cause a type to be incorrectly initialized in the function fincr in srport/fincr.c and cause a crash due to a NULL pointer dereference...

CVE-2022-28048

STB v2.27 was discovered to contain an integer shift of invalid size in the component stbijpegdecodeblockprogac...

UBUNTU-CVE-2021-41715

libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379...

CVE-2022-26281

BigAnt Server v5.6.06 was discovered to contain an incorrect access control issue...

CVE-2022-22669

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.3. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-40048

There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability...

UBUNTU-CVE-2021-38578

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize...